CVE-2006-4800 - OpenCVE

Multiple buffer overflows in libavcodec in ffmpeg before 0.4.9_p20060530 allow remote attackers to cause a denial of service or possibly execute arbitrary code via multiple unspecified vectors in (1) dtsdec.c, (2) vorbis.c, (3) rm.c, (4) sierravmd.c, (5) smacker.c, (6) tta.c, (7) 4xm.c, (8) alac.c, (9) cook.c, (10) shorten.c, (11) smacker.c, (12) snow.c, and (13) tta.c. NOTE: it is likely that this is a different vulnerability than CVE-2005-4048 and CVE-2006-2802.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Ffmpeg	Ffmpeg

Configuration 1 [-]

OR	cpe:2.3:a:ffmpeg:ffmpeg:0.4.6:::::::*
	cpe:2.3:a:ffmpeg:ffmpeg:0.4.7:::::::*
	cpe:2.3:a:ffmpeg:ffmpeg:0.4.8:::::::*
	cpe:2.3:a:ffmpeg:ffmpeg:0.4.9:::::::*

References

Link	Resource
http://bugs.gentoo.org/show_bug.cgi?id=133520
http://secunia.com/advisories/21921	Patch Vendor Advisory
http://secunia.com/advisories/22180
http://secunia.com/advisories/22181
http://secunia.com/advisories/22182
http://secunia.com/advisories/22198
http://secunia.com/advisories/22200
http://secunia.com/advisories/22201
http://secunia.com/advisories/22202
http://secunia.com/advisories/22203
http://secunia.com/advisories/22230
http://secunia.com/advisories/23010
http://secunia.com/advisories/23213
http://security.gentoo.org/glsa/glsa-200609-09.xml	Patch Vendor Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2006:173
http://www.mandriva.com/security/advisories?name=MDKSA-2006:174
http://www.mandriva.com/security/advisories?name=MDKSA-2006:175
http://www.mandriva.com/security/advisories?name=MDKSA-2006:176
http://www.novell.com/linux/security/advisories/2006_73_mono.html
http://www.securityfocus.com/bid/20009	Patch
http://www.ubuntu.com/usn/usn-358-1
http://www.us.debian.org/security/2006/dsa-1215

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2006-09-14T22:00:00

Updated: 2006-10-03T09:00:00

Reserved: 2006-09-14T00:00:00

Link: CVE-2006-4800

JSON object: View

NVD Information

Status : Analyzed

Published: 2006-09-14T22:07:00.000

Modified: 2018-10-30T16:25:34.370

Link: CVE-2006-4800

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-09-13T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple buffer overflows in libavcodec in ffmpeg before 0.4.9_p20060530 allow remote attackers to cause a denial of service or possibly execute arbitrary code via multiple unspecified vectors in (1) dtsdec.c, (2) vorbis.c, (3) rm.c, (4) sierravmd.c, (5) smacker.c, (6) tta.c, (7) 4xm.c, (8) alac.c, (9) cook.c, (10) shorten.c, (11) smacker.c, (12) snow.c, and (13) tta.c. NOTE: it is likely that this is a different vulnerability than CVE-2005-4048 and CVE-2006-2802."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2006-10-03T09:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "MDKSA-2006:174", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:174"}, {"name": "22181", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/22181"}, {"name": "SUSE-SA:2006:073", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://www.novell.com/linux/security/advisories/2006_73_mono.html"}, {"name": "22230", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/22230"}, {"name": "22201", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/22201"}, {"name": "20009", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/20009"}, {"name": "23010", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/23010"}, {"name": "USN-358-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "http://www.ubuntu.com/usn/usn-358-1"}, {"name": "23213", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/23213"}, {"name": "22200", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/22200"}, {"name": "22198", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/22198"}, {"name": "MDKSA-2006:173", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:173"}, {"name": "21921", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/21921"}, {"name": "MDKSA-2006:176", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:176"}, {"name": "DSA-1215", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.us.debian.org/security/2006/dsa-1215"}, {"name": "22182", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/22182"}, {"name": "MDKSA-2006:175", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:175"}, {"name": "22180", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/22180"}, {"name": "22203", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/22203"}, {"name": "22202", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/22202"}, {"tags": ["x_refsource_MISC"], "url": "http://bugs.gentoo.org/show_bug.cgi?id=133520"}, {"name": "GLSA-200609-09", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "http://security.gentoo.org/glsa/glsa-200609-09.xml"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-4800", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple buffer overflows in libavcodec in ffmpeg before 0.4.9_p20060530 allow remote attackers to cause a denial of service or possibly execute arbitrary code via multiple unspecified vectors in (1) dtsdec.c, (2) vorbis.c, (3) rm.c, (4) sierravmd.c, (5) smacker.c, (6) tta.c, (7) 4xm.c, (8) alac.c, (9) cook.c, (10) shorten.c, (11) smacker.c, (12) snow.c, and (13) tta.c. NOTE: it is likely that this is a different vulnerability than CVE-2005-4048 and CVE-2006-2802."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "MDKSA-2006:174", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:174"}, {"name": "22181", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/22181"}, {"name": "SUSE-SA:2006:073", "refsource": "SUSE", "url": "http://www.novell.com/linux/security/advisories/2006_73_mono.html"}, {"name": "22230", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/22230"}, {"name": "22201", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/22201"}, {"name": "20009", "refsource": "BID", "url": "http://www.securityfocus.com/bid/20009"}, {"name": "23010", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/23010"}, {"name": "USN-358-1", "refsource": "UBUNTU", "url": "http://www.ubuntu.com/usn/usn-358-1"}, {"name": "23213", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/23213"}, {"name": "22200", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/22200"}, {"name": "22198", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/22198"}, {"name": "MDKSA-2006:173", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:173"}, {"name": "21921", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/21921"}, {"name": "MDKSA-2006:176", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:176"}, {"name": "DSA-1215", "refsource": "DEBIAN", "url": "http://www.us.debian.org/security/2006/dsa-1215"}, {"name": "22182", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/22182"}, {"name": "MDKSA-2006:175", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:175"}, {"name": "22180", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/22180"}, {"name": "22203", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/22203"}, {"name": "22202", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/22202"}, {"name": "http://bugs.gentoo.org/show_bug.cgi?id=133520", "refsource": "MISC", "url": "http://bugs.gentoo.org/show_bug.cgi?id=133520"}, {"name": "GLSA-200609-09", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-200609-09.xml"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-4800", "datePublished": "2006-09-14T22:00:00", "dateReserved": "2006-09-14T00:00:00", "dateUpdated": "2006-10-03T09:00:00", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:0.4.6:*:*:*:*:*:*:*", "matchCriteriaId": "0AEE1977-E9E0-4BFF-B33B-B083E49E51F1", "vulnerable": true}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:0.4.7:*:*:*:*:*:*:*", "matchCriteriaId": "E6979C17-0BC6-47D1-9B73-254D84306A96", "vulnerable": true}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:0.4.8:*:*:*:*:*:*:*", "matchCriteriaId": "204C7C05-3441-4DB0-8702-D99C8FCB381E", "vulnerable": true}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:0.4.9:*:*:*:*:*:*:*", "matchCriteriaId": "5CD897CA-4F73-437B-9649-951DD2D37B51", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Multiple buffer overflows in libavcodec in ffmpeg before 0.4.9_p20060530 allow remote attackers to cause a denial of service or possibly execute arbitrary code via multiple unspecified vectors in (1) dtsdec.c, (2) vorbis.c, (3) rm.c, (4) sierravmd.c, (5) smacker.c, (6) tta.c, (7) 4xm.c, (8) alac.c, (9) cook.c, (10) shorten.c, (11) smacker.c, (12) snow.c, and (13) tta.c. NOTE: it is likely that this is a different vulnerability than CVE-2005-4048 and CVE-2006-2802."}, {"lang": "es", "value": "M\u00faltiples desbordamientos de buffer en libavcodec en ffmpeg anterior a 0.4.9_p20060530 permite a un atacante remoto causar denegaci\u00f3n de servicio o la posibilidad de ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de multiples vectores no especificados en (1) dtsdec.c, (2) vorbis.c, (3) rm.c, (4) sierravmd.c, (5) smacker.c, (6) tta.c, (7) 4xm.c, (8) alac.c, (9) cook.c, (10) shorten.c, (11) smacker.c, (12) snow.c, y (13) tta.c. NOTA: es probable que esta sea una vulnerabilidad diferente a la CVE-2005-4048 y CVE-2006-2802."}], "id": "CVE-2006-4800", "lastModified": "2018-10-30T16:25:34.370", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": true, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-09-14T22:07:00.000", "references": [{"source": "cve@mitre.org", "url": "http://bugs.gentoo.org/show_bug.cgi?id=133520"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/21921"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/22180"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/22181"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/22182"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/22198"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/22200"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/22201"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/22202"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/22203"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/22230"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/23010"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/23213"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://security.gentoo.org/glsa/glsa-200609-09.xml"}, {"source": "cve@mitre.org", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:173"}, {"source": "cve@mitre.org", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:174"}, {"source": "cve@mitre.org", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:175"}, {"source": "cve@mitre.org", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:176"}, {"source": "cve@mitre.org", "url": "http://www.novell.com/linux/security/advisories/2006_73_mono.html"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/20009"}, {"source": "cve@mitre.org", "url": "http://www.ubuntu.com/usn/usn-358-1"}, {"source": "cve@mitre.org", "url": "http://www.us.debian.org/security/2006/dsa-1215"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}